ZyXEL MAX-306 User Guide - Page 228
Table 91, Log Message, Description, Log Display, Payload Type
View all ZyXEL MAX-306 manuals
Add to My Manuals
Save this manual to your list of manuals |
Page 228 highlights
Chapter 19 The Logs Screens can reconstruct and analyze the traffic flowing through the device after collecting the traffic logs. Table 91 Syslog Logs LOG MESSAGE DESCRIPTION Event Log: Mon dd hr:mm:ss hostname src="" dst="" msg="" note="" devID="" cat="" This message is sent by the system ("RAS" displays as the system name if you haven't configured one) when the router generates a syslog. The facility is defined in the Log Settings screen. The severity is the log's syslog class. The definition of messages and notes are defined in the various log charts throughout this appendix. The "devID" is the MAC address of the router's LAN port. The "cat" is the same as the category in the router's logs. Traffic Log: Mon dd hr:mm:ss hostname src="" dst="" msg="Traffic Log" note="Traffic Log" devID="" cat="Traffic Log" duration=seconds sent=sentBytes rcvd=receiveBytes dir="" protoID=IPProtocolID proto="serviceName" trans="IPSec/Normal" This message is sent by the device when the connection (session) is closed. The facility is defined in the Log Settings screen. The severity is the traffic log type. The message and note always display "Traffic Log". The "proto" field lists the service name. The "dir" field lists the incoming and outgoing interfaces ("LAN:LAN", "LAN:WAN", "LAN:DEV" for example). The following table shows RFC-2408 ISAKMP payload types that the log displays. Please refer to the RFC for detailed information on each type. Table 92 RFC-2408 ISAKMP Payload Types LOG DISPLAY PAYLOAD TYPE SA Security Association PROP Proposal TRANS Transform KE Key Exchange ID Identification CER Certificate CER_REQ Certificate Request HASH Hash SIG Signature NONCE Nonce NOTFY Notification DEL Delete VID Vendor ID 228 User's Guide